And hello again. I found this in the documentation, but i can't make heads or tail of it. https://cwiki.apache.org/confluence/display/CXF20DOC/Standalone+HTTP+Transport
It does seem to be what I judging from this short outtake: For each endpoint, CXF allows you to specify: ------------------------------------------------------------------------------------------------------------------ - sessionSupport - continuationsEnabled - reuseAddress - maxIdleTime - a giant, complex, raft of TLS parameters for HTTPS. ------------------------------------------------------------------------------------------------------------------ So to add a few more questions to my question: Can someone explain the configuration setup to me, I don't get it? Is this the only way to access the TLS parameters for the endpoint? On Fri, May 26, 2017 at 4:04 PM, Martin Nielsen <[email protected]> wrote: > Hello dear CXF users. I have run into an issue i could really use some > help with. There are simply too many moving parts for me to get a propper > overview. I am seeing intents, features, ssl and just a bit too much at > once. > > I am trying to register an endpoint (and only that endpoint) using 2way > SSL. > > Say i have a service registered on a standard Karaf server: > > @Path("/test") > public interface TestServiceRest{ > > @POST > @Path("apath") > @Produces("application/xml") > public void recieveTestRequest(TestRequest request) throws > SomeException; > > } > > @Component(property = {"service.exported.interfaces=*", > "service.exported.configs=org.apache.cxf.rs", "org.apache.cxf.rs. > httpservice.context=some/endpoint"}) > public class TestEndpointRest implements TestServiceRest{ > > public void recieveTestRequest(TestRequest request) throws > SomeException{ > throw new UnsupportedOperationException("NIY"); > } > > } > > > Now i want to ensure that all methods in TestEndpointRest are met with > mutual authentication SSL, but any other services should not be affected. > > Currently i have 2way ssl set up on the entire server, but that is just > not a good option. > > I hope you can help. > > -Martin >
